package com.atguigu.crowd.mvc.interceptor;

import com.atguigu.crowd.constant.CrowdConstant;
import com.atguigu.crowd.entity.Admin;
import com.atguigu.crowd.exception.AccessForbiddenException;
import com.atguigu.crowd.util.CrowdUtil;
import org.springframework.web.servlet.handler.HandlerInterceptorAdapter;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

public class LoginInterceptor extends HandlerInterceptorAdapter {
    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        // 1.通过request对象获取session对象
        HttpSession session = request.getSession();
//       2. 尝试从session中获取admin对象
        Admin admin = (Admin)session.getAttribute(CrowdConstant.ATTR_NAME_LOGIN_ADMIN) ;
//        3. 判断admin对象是否为空
        if(admin == null){
//            4. 则抛出异常
            throw  new AccessForbiddenException(CrowdConstant.MESSAGE_ACCESS_FORNIDEN) ;
        }
//        5. 如果Admin对象不为null,则返回true放行
        return true;
    }
}
